漏洞信息详情
CA BrightStor ARCserve Backup 安全漏洞
- CNNVD编号:CNNVD-200508-064 <!--
- 危害等级: 高危-->
- 危害等级: 高危
- CVE编号: CVE-2005-1272
- 漏洞类型: 其他
- 发布时间: 2005-08-05
- 威胁类型: 远程
- 更新时间: 2021-04-08
- 厂 商: ca
- 漏洞来源: James K james.wi...
-
漏洞简介
BrightStor ARCserve Backup可为各种平台的服务器提供备份和恢复保护功能。
BrightStor ARCserve Backup和BrightStor Enterprise Backup Agents for Windows中存在栈溢出漏洞,可能允许远程攻击者以系统权限执行任意代码或导致拒绝服务。溢出的起因是没有对发送给6070端口的数据执行正确的边界检查。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
BrightStor ARCserve Backup r11.1 for Windows:
http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70767&startsearch=1
BrightStor ARCserve Backup r11.0 for Windows:
http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70769&startsearch=1
BrightStor ARCserve Backup v9.01 for Windows:
http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70770&startsearch=1
BrightStor Enterprise Backup v10.5 for Windows:
http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70774&startsearch=1
BrightStor Enterprise Backup v10.0 for Windows:
http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70773&startsearch=1
参考网址
来源:BID
链接:https://www.securityfocus.com/bid/14453
来源:IDEFENSE
链接:http://www.idefense.com/application/poi/display?id=287&type=vulnerabilities&flashstatus=true
来源:CERT-VN
链接:http://www.kb.cert.org/vuls/id/279774
来源:CONFIRM
链接:http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/21656
受影响实体
- Ca Brightstor_enterprise_backup_agent:10.5:Sap<!--2000-1-1-->
- Ca Brightstor_enterprise_backup_agent:10.5:Oracle<!--2000-1-1-->
- Ca Brightstor_enterprise_backup_agent:10.0:Sql<!--2000-1-1-->
- Ca Brightstor_enterprise_backup_agent:10.0:Sap<!--2000-1-1-->
- Ca Brightstor_enterprise_backup:10.5<!--2000-1-1-->
补丁
- CA BrightStor ARCserve Backup 安全漏洞的修复措施<!--2005-8-5-->
还没有评论,来说两句吧...